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DETAILED ACTION 



1 . The text of those sections of Title 35,U.S.Code not included in this section can be 
found in the prior office action. 

2. The prior office actions are incorporated herein by reference. In particular, the 
observations with respect to claim language, and response to previously 
presented arguments. 

3. Claims 1-7 have been amended. 

4. Claims 1-7 are pending. 

5. Examiner withdraws objection to the drawings and specification due to correction 
by the applicant. 

Response to Arguments 

6. Applicant's arguments with respect to the claims 1-7 have been considered but 
are moot in view of the new ground(s) of rejection. 

• In response to applicant's argument that the references fail to show certain 

features of applicant's invention, it is noted that the features upon which applicant 
relies (i.e " allocation is carried out in a dynamic manner",page 8, last paragraph 
of Applicant's response ) are not recited in the rejected claim 1. Although the 
claims are interpreted in light of the specification, limitations from the 
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specification are not read into the claims. See In re Van Geuns, 988 F.2d 1181, 
26 USPQ2d 1057 (Fed. Cir. 1993). 

Claim Objections 

7. Claims 2-7 are objected to because of the following informalities: typo error. 
Examiner suggests the following corrections: 

Claim 2: 

• Replacement of the phrase "an" (line 5) with the phrase "said". 

• Inserting the phrase "security" after the phrase "said" line 6. 

• Replacement of the phrase "a" (line 7) with the phrase "the". 

• Replacement of the phrase "a" (line 8) with the phrase "said". 

• Deletion of the phrase "the" (line 7). 

• Deletion of the phrase "the" (line 9, first occurrence). 

Claim 3: 

• Deletion of the phrase "the" (line 10, second occurrence). 
Claim 4: 

• Replacement of the phrase "a" (line 3, first occurrence) with the phrase "said". 
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Examiner suggests Applicant to carefully check on the claims 5-7 language in order to 
correct possible typo errors such as above errors. 

Claim Rejections - 35 USC §112 

8. Claims 1 and 3 are rejected under 35 U.S.C. 112, second paragraph, as being 
indefinite for failing to particularly point out and distinctly claim the subject matter 
which applicant regards as the invention. 

In claim 1, the phrase "allocatable.." phrase (line 7) makes the claims indefinite and 
unclear in that neither means/method steps nor interrelationship of means/method steps 
are set forth in these claims in order to achieve the desired results expressed in the 
"allocatable..." phrase. 

It is not clear "allocatable" is an affirmative statement with respect to claim 1 or 
not, that is the method steps are being executed (narrow claim language) or not 
(broader claim language). 

Examiner suggests the following phrase " selectively allocating a number of 
security registers to any one of a plurality of said directories". Appropriate 
corrections or clarification are requested. 

Examiner considers the broader claim language for the purpose of the 
examination, that is the claim 1 does represent only directories in which the data 
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applications are stored, they are organized in an n-level tree, a number of 
security registers where each security registers containing rights or secrets. 

In claim 3 the phrase "a new directory" lines 10 and 1 1 are confusing. It is not 
clear if the phrase refers back to selected new directory of lines 9-10 or it is 
another new directory. Examiner considers it as referring back to selected new 
directory. Clarification or correction is requested. 

Claim Rejections - 35 USC § 103 

9. Claim 1 is rejected under 35 U.S.C. 103(a) as being unpatentable over Proust et 
al. (6,216,014 B1) in view of Jennings, III (6,134,631 A). 

As per claim 1 Proust et al. (6,216,014 B1) teach a system of managing the 
security of data processing applications (see col. 3, lines 37-40 where a system of 
managing of applications by secure means is disclosed), comprising: 
Directory in which the data processing applications are stored (see col. 12, lines 
46-67 where directory files such as master file or root directory and sub- 
directories stores application files such as loyalty application, payment 
applications), said directories being organized in an n-level tree (see col. 12, lines 
46-52 where the directories are structured as three level hierarchical structure, 
that is corresponds to Applicant's n-level tree structure as a hierarchical 
structure); and 



Application/Control Number: 09/601 ,222 Page 6 

Art Unit: 2132 

A number of security registers, which are selectively allocatable to any one of a 
plurality of said directories, each security register containing all rights or secrets 
which have been granted under the directory to which it has been allocated (see 
col. 13, lines 36-55 which relates to fig. 5 flowchart, step 57 disclose having 
reference secret and a message authentication mode which relate to the related 
file and under a directory as disclosed above in col. 12, lines 46-67; therefore 
rights that corresponds to message authentication mode that verify the access 
control policy to be used for the related file which itself relates to transmitted 
remote application; and on the other hand secrets such as reference secret 
related to corresponding file that itself relates to remote application; further 
col. 14, lines 6-9 and 28-47 disclose data storage holds a secret reference, a 
security scheme and authentication mode and their storage in the data storage 
and how the pointer points to the location of the storage; examiner considers 
location of the storage where the identifier points to as corresponding to the 
security register that holds the message that contains reference secret or rights) 
but do not disclose that security registers or particular location of the memory 
that corresponds to a security registers is allocated to and it is under a directory. 
However Jennings, III (6,134,631 A) teach an slave device that being treated as 
a hierarchical memory system that security registers or particular location of the 
memory that corresponds to a security registers is allocated to and it is under a 
directory (see col. 3, lines 29-33 where it disclose memory systems is 
hierarchical able to retrieve files within a stored directory). It would have been 
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obvious to one of ordinary skilled in the art at the time the invention was made to 
utilize Jennings, III (6,134,631 A) allocation of security register or a memory 
location under a single directory in Proust et al. (6,216,014 B1)'s hierarchical file 
management security system of processing applications in order to provide 
additional performance for demanding applications while adding little additional 
hardware by utilizing the slave device as hierarchical memory system on which to 
retrieve and store files that are stored under a directory. 

10. Claims 2 and 4 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Proust etal. (6,216,014 B1) in view of Jennings, III (6,134,631 A), and further in 
view of Shanton (5, 680,452 A). 

As per claim 2 Proust et al. (6,216,014 B1) teach a method of managing the 
security of data processing applications, comprising the steps of: 

selecting one of a plurality of directories that are organized in an n-level hierarchy 
(see col. 12, lines 46-52 where the directories are structured as three level 
hierarchical structure, that is corresponds to Applicant's n-level tree structure as 
a hierarchical structure); 

storing in an allocated security register rights granted under the directory to 
which said register has been allocated, according to given rules (see col. 13, lines 
36-55 which relates to fig.5 flowchart, step 57 disclose having reference secret 
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and a message authentication mode which relate to the related file and under a 
directory as disclosed above in col. 12, lines 46-67; therefore rights that 
corresponds to message authentication mode that verify the access control 
policy to be used for the related file which itself relates to transmitted remote 
application are corresponding to given rules; and on the other hand secrets such 
as reference secret related to corresponding file that itself relates to remote 
application; further col. 14, lines 6-9 and 28-47 disclose data storage holds a 
secret reference, a security scheme (given rule) and authentication mode 
(authentication rule) and their storage in the data storage and how the pointer 
points to the location of the storage; examiner considers location of the storage 
where the identifier points to as corresponding to the security register that holds 
the message that contains reference secret or rights), 
seeking the secrets presented in a directory in which a data processing 
applications is stored (see col. 12, lines 46-52 where the directories are structured 
as three level hierarchical structure, that is corresponds to Applicant's n-level tree 
structure as a hierarchical structure where examiner considers the root directory 
or master file directory represent the highest level directory or level 1 directory as 
a root directory where other subdirectories are under such directory; and see 
col. 12, lines 46-67 where directory files such as master file or root directory and 
sub-directories stores application files such as loyalty application, payment 
applications); and 
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(c) verifying the knowledge of one or more rights at the level of the data 
processing application (see fig. 6-9 where knowledge of one or more rights such 
as security scheme of application or security attributes or secret reference or 
authorization mode is verified in relation with one another; col. 12, lines 58-61 
where a right of access to Loyalty remote applications is verified by verifying 
access condition "private") but do not disclose explicitly that security registers 
or particular location of the memory that corresponds to a security registers is 
allocated to and it is under a directory. 

However Jennings, III (6,134,631 A) teach an slave device that being treated as 
a hierarchical memory system that security registers or particular location of the 
memory that corresponds to a security registers is allocated to and it is under a 
single directory (see col. 3, lines 29-33 where it disclose memory systems is 
hierarchical able to retrieve files within a stored directory and therefore any 
retrieval of files from any location that corresponds to security register in the 
memory is under a directory). It would have been obvious to one of ordinary 
skilled in the art at the time the invention was made to utilize Jennings, III 
(6,134,631 A) allocation of security register or a memory location under a single 
directory in Proust et al. (6,216,014 B1)'s hierarchical file management security 
system of processing applications in order to provide additional performance for 
demanding applications while adding little additional hardware by utilizing the 



Application/Control Number: 09/601 ,222 Page 1 0 

Art Unit: 2132 

slave device as hierarchical memory system on which to retrieve and store files 
that are stored under a directory. 

Proust etal. (6,216,014 B1) in view of Jennings, III (6,134,631 A) however do 
not explicitly disclose dynamic allocation with respect to directories and their 
corresponding registers. On the other hand Shanton (5, 680,452 A) disclose 
analogous art having hierarchy access system for the user of the system (see 
col.3, lines 62-65), where objects can be dynamic (see col.4, lines 38-41 ) where 
such objects can be container files, a directory, a collection of directories, a hard 
disk (see col.4, lines 43-52) and where such objects such as directories and file 
container that corresponds to Applicant's registers have inherent features that 
can change dynamically "on the fly" during the operation on the object (see col.4, 
lines 34-39); and selection is being done on the dynamic objects (see col. 6, lines 
7-40 where such dynamic inherency of the objects create a memory saving 
during the selection and operation of the object in harmony with Applicant's 
invention goal). Therefore it would have been obvious to one of ordinary skilled in 
the art at the time the invention was made to utilize Shanton's dynamic selection 
of registers such as file container in Proust's hierarchical file management 
security system in view of Jennings, III (6,134,631 A) allocation of security 
register or a memory location under a single directory in order to provide a 
system in which objects may be embedded within other objects, resulting in an 
access hierarchy for users of the system (col.3, lines 62-65). 
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As per claim 4 Proust et al. (6,216,014 B1) teach a method according to claim 2 
wherein said seeking step is performed according to the following rule: verifying 
that the secret presented is known in the current directory (Ni) or in a directory at 
a higher level of the hierarchy (see col.8, lines 1-24 where upon authentication of 
access value such as "private access" or "shared access" that corresponds to 
verification of a secret presented in a master file or file under master file where 
the master file corresponds to root directory and files under it corresponds to 
sub-directories access is permitted and therefore upon authentication secret 
known in a subdirectory or files under the master files that corresponds to 
directory Ni or its higher directory that corresponds to master file which itself 
corresponds to higher directory is verified). 

Allowable Subject Matter 

1 1 .Claims 3 would be allowable if rewritten to overcome the rejection(s) under 35 

U.S.C. 112, 2nd paragraph, set forth in this Office action and to include all of the 

limitations of the base claim and any intervening claims. 
12. Claims 5-7 are objected to as being dependent upon a rejected base claim, but 

would be allowable if rewritten in independent form including all of the limitations 

of the base claim and any intervening claims. 
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Conclusion 

13. Applicant's amendment necessitated the new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP 

§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 
37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

14. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Kambiz Zand whose telephone number is (571) 
272-381 1 . The examiner can normally reached on Monday-Thursday (8:00-5:00). 
If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gilberto Barron can be reached on (571) 272-3799. The fax phone 
numbers for the organization where this application or proceeding is assigned as 
(703) 872-9306. Information regarding the status of an application may be 
obtained from the Patent Application Information Retrieval (PAIR) system. Status 
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information for published applications may be obtained from either Private PAIR 
or Public PAIR. Status information for unpublished applications is available 
through Private PAIR only. For more information about the PAIR system, see 
http://pair-direct.uspto.gov. Should you have questions on access to the Private 
PAIR system, contact the Electronic Business Center (EBC) at 866-217-9197 
(toll-free). 




Kambiz Zand 



03/04/2005 



